Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
748bd05a by Salvatore Bonaccorso at 2022-10-03T21:08:35+02:00
Update information for CVE-2022-41556
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1576,7 +1576,8 @@ CVE-2022-41556 [handle RDHUP when collecting chunked body]
- lighttpd 1.4.67-1
[buster] - lighttpd <not-affected> (vulnerable code inserted in
lighttpd-1.4.55-211-gbcddbe18)
NOTE: https://github.com/lighttpd/lighttpd1.4/pull/115
- NOTE:
https://github.com/lighttpd/lighttpd1.4/commit/b18de6f9264f914f7bf493abd3b6059343548e50
(lighttpd-1.4.67)
+ NOTE: Introduced by:
https://github.com/lighttpd/lighttpd1.4/commit/bcddbe186f010e2964f7551141c0b8350b36817d
(lighttpd-1.4.56-rc1)
+ NOTE: Fixed by:
https://github.com/lighttpd/lighttpd1.4/commit/b18de6f9264f914f7bf493abd3b6059343548e50
(lighttpd-1.4.67)
CVE-2022-40690
RESERVED
CVE-2022-3322
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/748bd05a92e0e3e8dc86cfb82dc0925d92d4bd3f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/748bd05a92e0e3e8dc86cfb82dc0925d92d4bd3f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
